Jumat, 22 Februari 2019

Data Sharing Systems Used Inside The V Eyes Partnership

(Updated: July 25, 2017)

From the Snowden revelations, the full general world learned most the Five Eyes partnership betwixt the signals intelligence agencies of the United States, the United Kingdom, Canada, Commonwealth of Australia together with New Zealand, but details most this cooperation remained shrouded inwards secrecy.

Now, a batch of internal newsletters of the NSA's Signals Intelligence Directorate (SID), published final August past times the website The Intercept, provides novel information most diverse systems for sharing information, metadata, content together with reports with the Five Eyes partners.

- From BRUSA to Five Eyes
- Joint Executive for SIGINT Interoperability (JESI)
- Secure communications: IWS
- Interoperable access control: PKI
- Sharing metadata: MAINWAY
- Federated metadata queries: GLOBALREACH
- Sharing content: TICKETWINDOW
- Sharing halt reports: CATAPULT
- SIDtoday newsletters


From BRUSA to Five Eyes

The Five Eyes community grew out of the cooperation betwixt Great Britain together with the U.S.A. of America during World War II. On March 5, 1946 both countries signed the BRUSA (now known every bit UKUSA) Agreement on communications intelligence cooperation. This is non alone most collecting signals intelligence, but also most safety measures, similar the usage of codewords to confine access to highly sensitive sources together with reports.*

In June 1948 the UKUSA Agreement was established, which Canada, Commonwealth of Australia together with New Zealand signed on along with the UK every bit "Second Parties". Influenza A virus subtype H5N1 split understanding betwixt Canada together with the USA (CANUSA) was signed inwards Nov 1949, followed past times 1 with Commonwealth of Australia inwards September 1953.*

Finally, inwards May 1954, the BRUSA Agreement was renamed UKUSA, which became also the request the complex network created past times these oft overlapping agreements, appendices together with memoranda of understanding.* Commonwealth of Australia acted on behalf of New Zealand until the latter became a amount fellow member inwards 1955 or 1977.

The (signals) intelligence agencies that bring less unopen bilateral relationships with NSA are called Third Party partners. Currently, at that spot are over thirty Third Party partners, see: NSA's Foreign Partnerships

When the term Five Eyes (for classification purposes abbreviated every bit FVEY) came inwards usage is non clear, but the SIDtoday newsletter from August 5, 2003 confirms that "Five Eyes" is derived "from the "US/UK/CAN/AUS/NZ EYES ONLY" caveat that limits the distribution of SIGINT reports to the listed Second Party countries."

The initial network of bilateral relationships betwixt the 5 partner countries was eventually transformed into a "group partnership" inwards 1993 - every bit was revealed inwards a newsletter from August 25, 2003. It's non explained what this means, but it's sounds similar a shift to a to a greater extent than multilateral framework for cooperation with eachother.


The British-U.S. Communication Intelligence Agreement from 1946
(the full text every bit pdf - click to enlarge)


Joint Executive for SIGINT Interoperability (JESI)

In 1998, the agencies of the Five Eyes grouping established the Joint Executive for SIGINT Interoperability (JESI, pronouncesd every bit "jessy"). In the newsletter from August 25, 2003, JESI is described every bit a "multi-national executive trunk responsible for ensuring continued interaction together with interoperability with the 5 SIGINT partners". JESI doesn't bring its ain staff, it's only a collaboration platform.

Officials from the Five Eyes agencies also run across at an annual JESI conference. In July 2003 this coming together was held inwards the Australian uppercase Canberra together with was focused on the mission objectives of the partner agencies together with how they relate to the 5-EYES SIGINT Partnership Business Vision, which was published before that year. They addressed the next topics:
- Mission collaboration together with cognition sharing
- Enabling SIGINT operations through information assurance
- Exchange of finished intelligence
- Maintaining concern continuity



For a to a greater extent than efficient cooperation with the Five Eyes partners, the next systems were created, most of them initiated past times JESI inwards 2002-2003, every bit described inwards the SIDtoday newsletter from August 25, 2003:

Secure communications: IWS

Influenza A virus subtype H5N1 collaboration tool called InfoWorkSpace (IWS) was created to telephone commutation information betwixt NSA, the US military machine together with partner countries during Operation Enduring Freedom inwards Afghanistan.

IWS is a software tool that provides chat communications every bit good every bit good together with video conferencing, file sharing, virtual whiteboards, together with shared desktop views through desktop computers connected to a secure network.NSANet.

According to a SIDtoday newsletter from September 10, 2003 IWS was already used past times over 4000 NSA together with their Second Party counterparts at the working levels. They collaborated on topics similar Operation Enduring Freedom, international terrorism, real-time collection coordination, SIGINT evolution together with multi-intelligence tasking.

This succesful usage of IWS led JESI create upward one's heed that the scheme should also live used at leadership-level. As of 2003, the SIGINT directors of the Five Eyes partners would usage IWS to heighten their collaboration on subjects ranging from electrical flow intelligence objectives to time to come collection planning. They would acquire access to 1 of the IWS servers managed past times NSA, codenamed VOTEDOOR.


InfoWorkSpace, hither beingness used during the Joint
Expeditionary Force Experiment (JEFX) 2006
(photo: CHIPS Magazine)

In unopen to other newsletter from December 19, 2003, it is said that non long before, the SIGINT directors of NSA, the Canadian CSE, the Australian DSD together with New Zealand's GCSB held their kickoff virtual coming together using the InfoWorkSpace tool. However, their counterpart at "GCHQ was unable to attend due to a estimator failure."

According to the newsletter, this kickoff coming together lasted over an hr together with was mainly most "efforts against terrorism, peculiarly ways to extend cooperation across the SIGINT community, together with to include the HUMINT [Human Intelligence] community". Influenza A virus subtype H5N1 adjacent virtual coming together using IWS was scheduled for the middle of Jan 2004.

The tech website Motherboard found the next video presentation of the InfoWorkSpace (IWS) tool, which was developed past times ezenia!, a pocket-sized companionship from Salem, New Hampshire:





Interoperable access control: PKI

In social club to give Second Party employees access to articulation collaboration systems, JESI pushed the partner agencies to deploy interoparable Public Key Infrastructure (PKI). The NSA's PKI is a comprehensive encryption scheme to protect classified information against:

- Unauthorized disclosure together with modification through digital signing
- Unauthorized access through access controls together with authorization services
- False user idenfications

An SIDtoday newsletter from July 8, 2003 explains that the novel PKI scheme would supersede the ICARUS email encryption scheme past times Oct 2003. Influenza A virus subtype H5N1 valid PKI certificate was also needed to usage applications similar Peoplesoft together with CONCERTO. The latter is NSA's internal personnel system, which has split parts for human resources together with safety clearance information.

The novel PKI certificates were kickoff issued to NSA employees who were US citizens together with held a blue, green, or gilt badge. Later, PKI certificates would also live issued to employees of Second Party agencies together with to non-US citizens. This PKI scheme seems to live a software solution without two-factor authentication with a token similar the CAC-smartcard of the US military.


Sharing metadata: MAINWAY

Since 2006 it was idea that MAINWAY was a repository only for telephone metadata, but based upon late leaked together with declassified documents, it was explained on this weblog that MAINWAY also contains mesh metadata every bit good every bit the domestic telephone records NSA previously collected nether the ascendency of Section 215 of the USA PATRIOT Act.

Rather unexpected, the SIDtoday newsletter from August 25, 2003 right away also reveals that "MAINWAY, a scheme that uses telephone phone telephone contact chaining to position targets of interest, was provided to each of our partners. The partners right away render additional contact information to the database to heighten the articulation might to position targets".

So MAINWAY is non alone fed with the domestic US telephone records together with the unusual telephone together with mesh metadata collected past times NSA, but also with unusual metadata provided past times GCHQ, CSE, DSD together with GCSB. According to the quid pro quo dominion for intelligence cooperation, all Five Eyes partners tin patently also inquiry the MAINWAY database for their national safety interests.

However, Second Party analysts bring no access to the domestic US telephone records, but hence far at that spot are no documents that cite this explicitly (recently published NSANet.

As a federated service, GLOBALREACH tin live used to inquiry multiple metadata databases with 1 unmarried login. Influenza A virus subtype H5N1 2005 document says that for instance CIA would provide metadata "from non-SIGINT sources for inclusion inwards the dataset searched past times GLOBALREACH" together with it's probable that it tin also search the unusual metadata from MAINWAY.

Influenza A virus subtype H5N1 airplane pilot for a similar federated inquiry tool codenamed ICREACH for the US Intelligence Community (IC) was started inwards 2007. After NSA "persuaded other US IC agencies to brand almost 100 bn previously NOFORN records shareable with the 5-eyes via GLOBAL REACH", agreements were reached with the Second Party agencies, whereafter they started to SIGADs starting with DS, which appear to announce collection past times Second Party countries.

Influenza A virus subtype H5N1 similar information sharing scheme for the SIGINT Seniors Europe (SSEUR) grouping of Third Party partners is the Signals Intelligence Data System (SIGDASYS).


Sharing halt reports: CATAPULT

Finally, there's also a scheme for sharing intelligence reports with the Five Eyes partners. According to a newsletter from May 8, 2003, NSA together with the Canadian CSE laid a paradigm portal to telephone commutation SIGINT products betwixt NSA together with its Second Party partners nether the codename CATAPULT.

The CATAPULT portal "contains all 2nd political party viewable production shared with CSE to include multimedia reporting, NSANet through a browser interface. CATAPULT is based on CSE's SLINGSHOT system, which delivers SIGINT reports to Canadian "customers" similar policy together with determination makers.

CATAPULT was brought nether the JOURNEYMAN umbrella computer program for modernizing the way SIGINT analysts tin write together with disseminate their reports. As CATAPULT started every bit a prototype, it may bring been replaced past times a scheme that includes all Five Eyes partners.


Besides the systems described above, JESI also initiated the creation of several protected websites to allow employees of the Second Party agencies to securely part information inside specific communities of interest.

Update:
In Apr 2013, the PARTNERMALL Program (PMP) was used for collaboration with 2nd together with tertiary political party partners, but it was planned to live replaced past times the Global Collaboration Environment (GCE), which was FORNSAT yet is) a worldwide network of satellite intercept stations to provide inwards the information needs of each of the Second Party countries.


SIDtoday newsletters

In May 2016, The Intercept Releases of Canadian identities to Five Eyes partners
- About Canada together with the Five Eyes Intelligence Community (pdf)
- Martin Ruder: Hunters together with Gatherers: The Intelligence Coalition Against Islamic Terrorism
- NSA: UKUSA Agreement Release 1940-1956

Tidak ada komentar:

Posting Komentar